3 matches found
EUVD-2019-16899
Malware in sbrugna...
Subrion CMS Cross-Site Scripting Vulnerability (CNVD-2020-61966)
Subrion CMS is a PHP-based content management system CMS from the Subrion team. The system can be integrated into a website and supports a variety of extensions plugins and more. A cross-site scripting vulnerability exists in Subrion CMS version v4.2.1. The vulnerability stems from a lack of prop...
CVE-2019-7356
Subrion CMS v4.2.1 is affected by a cross-site scripting (XSS) vulnerability exploitable via the panel/phrases/ VALUE parameter. Root cause: lack of proper validation of client-side data in the web application. Impact: client-side JS can be injected, potentially compromising user input handling a...